{"id":6458,"date":"2020-12-16T21:57:51","date_gmt":"2020-12-16T20:57:51","guid":{"rendered":"https:\/\/webhosting.de\/?p=6458"},"modified":"2025-02-19T18:54:28","modified_gmt":"2025-02-19T17:54:28","slug":"nasa-pentagon-and-co-hackers-infiltrate-sensitive-targets","status":"publish","type":"post","link":"https:\/\/webhosting.de\/fr\/nasa-pentagon-und-co-hacker-infiltrieren-sensible-ziele\/","title":{"rendered":"NASA, Pentagone et Cie - Les pirates informatiques infiltrent des cibles sensibles"},"content":{"rendered":"<p class=\"wp-block-paragraph\">Le groupe de hackers APT29, bas\u00e9 en Russie, \u00e9galement connu sous le nom de Cozy Bear, aurait infiltr\u00e9 un certain nombre d'agences am\u00e9ricaines, dont le D\u00e9partement d'\u00c9tat, le D\u00e9partement de la Justice et le Pentagone, ainsi que la NASA et des milliers d'entreprises dans le monde entier. Selon les m\u00e9dias, le vecteur d'attaque utilis\u00e9 est le m\u00eame que celui qui a \u00e9t\u00e9 utilis\u00e9 r\u00e9cemment pour pirater le <a href=\"https:\/\/webhosting.de\/fr\/hacking-tools-the-security-enterprise-fireeye-stolen\/\">Soci\u00e9t\u00e9 de s\u00e9curit\u00e9 Fireeye<\/a> <a href=\"https:\/\/webhosting.de\/fr\/wordpress-gehackt-bekommen-sie-es-wieder-sicher\/\">hack\u00e9<\/a> \u00e9tait. Vers la cha\u00eene d'information <a href=\"https:\/\/edition.cnn.com\/2020\/12\/13\/politics\/us-agencies-investigating-hacking-data-breach\/index.html\" target=\"_blank\" rel=\"noreferrer noopener nofollow\">CNN<\/a> Les autorit\u00e9s ont depuis confirm\u00e9 l'attaque.<\/p>\n\n\n\n<figure class=\"wp-block-pullquote\"><blockquote><p>\"Nous pouvons confirmer qu'il y a eu une effraction dans l'un de nos bureaux. Nous avons demand\u00e9 \u00e0 la CISA et au FBI d'enqu\u00eater sur l'incident et nous ne pouvons pas en dire plus pour l'instant\".<\/p><cite>D\u00e9partement du commerce<\/cite><\/blockquote><\/figure>\n\n\n\n<div class=\"wp-block-group\"><div class=\"wp-block-group__inner-container is-layout-flow wp-block-group-is-layout-flow\">\n<h2 class=\"wp-block-heading\" id=\"h-updateserver-verteilt-malware\">Le serveur de mise \u00e0 jour distribue des logiciels malveillants<\/h2>\n<\/div><\/div>\n\n\n\n<p class=\"wp-block-paragraph\">Selon un rapport de <a href=\"https:\/\/www.fireeye.com\/blog\/threat-research\/2020\/12\/evasive-attacker-leverages-solarwinds-supply-chain-compromises-with-sunburst-backdoor.html\" target=\"_blank\" rel=\"noreferrer noopener nofollow\">Fireeye<\/a> le logiciel malveillant utilis\u00e9 pour l'attaque a \u00e9t\u00e9 distribu\u00e9 par <a href=\"https:\/\/webhosting.de\/fr\/differents-types-de-cloud-computing-prive-communautaire-hybride-public\/\">Serveur en nuage<\/a> du logiciel de surveillance et de gestion informatique Orion de Solarwinds. Les pirates ont int\u00e9gr\u00e9 le malware dans une mise \u00e0 jour du logiciel, qui a ensuite \u00e9t\u00e9 install\u00e9e par les entreprises et les autorit\u00e9s compromises.<\/p>\n\n\n\n<h2 class=\"wp-block-heading\" id=\"h-mehrere-updates-betroffen\">Plusieurs mises \u00e0 jour concern\u00e9es<\/h2>\n\n\n\n<p class=\"wp-block-paragraph\">Selon M. Fireeye, l'attaque a commenc\u00e9 d\u00e8s le printemps 2020, avec de multiples signatures et trojanisations <a href=\"https:\/\/webhosting.de\/fr\/taegliche-updates-auf-facebook\/\">Mises \u00e0 jour<\/a> et distribu\u00e9es via les serveurs de Solarwinds.<\/p>\n\n\n\n<p class=\"wp-block-paragraph\">En attendant, Fireeye a \u00e9t\u00e9 sur <a href=\"https:\/\/github.com\/fireeye\/sunburst_countermeasures\" target=\"_blank\" rel=\"noreferrer noopener nofollow\">GitHub<\/a> Les signatures du malware appel\u00e9 Sunburst ont \u00e9t\u00e9 publi\u00e9es, permettant \u00e0 Snort, Yara, IOC et ClamAV de nettoyer les syst\u00e8mes infect\u00e9s.<\/p>\n\n\n\n<p class=\"wp-block-paragraph\">Dans un <a href=\"https:\/\/www.solarwinds.com\/securityadvisory\" target=\"_blank\" rel=\"noopener\">Stel<\/a><a href=\"https:\/\/www.solarwinds.com\/securityadvisory\" target=\"_blank\" rel=\"noreferrer noopener nofollow\">Avis<\/a> Solarwinds a \u00e9galement confirm\u00e9 la propagation du malware Sunburst par ses serveurs de mise \u00e0 jour. L'entreprise recommande \u00e0 tous ses clients de mettre \u00e0 jour leur plate-forme Orion d\u00e8s que possible. Selon sa propre <a href=\"https:\/\/www.solarwinds.com\/company\/customers\" target=\"_blank\" rel=\"noreferrer noopener nofollow\">D\u00e9tails<\/a> Solarwinds compte plus de 300 000 clients dans le monde entier. Les victimes possibles du piratage comprennent donc non seulement les autorit\u00e9s am\u00e9ricaines mais aussi des entreprises telles que Siemens, AT&amp;T, Cisco, Mastercard et <a href=\"https:\/\/webhosting.de\/fr\/emails-microsoft-werden-abgewiesen\/\">Microsoft<\/a>.<\/p>\n\n\n\n<p class=\"wp-block-paragraph\">En face de la <a href=\"https:\/\/www.washingtonpost.com\/gdpr-consent\/?next_url=https%3a%2f%2fwww.washingtonpost.com%2fnational-security%2frussian-government-spies-are-behind-a-broad-hacking-campaign-that-has-breached-us-agencies-and-a-top-cyber-firm%2f2020%2f12%2f13%2fd5a53b88-3d7d-11eb-9453-fc36ba051781_story.html\" target=\"_blank\" rel=\"noreferrer noopener nofollow\">Washington Post<\/a> John Scott-Railton a d\u00e9clar\u00e9 que les dommages caus\u00e9s par l'attaque seront tr\u00e8s probablement \u00e9normes. Dans le pass\u00e9, APT29 a \u00e9t\u00e9 l'un des groupes de piratage les plus agressifs.<\/p>\n\n\n\n<figure class=\"wp-block-pullquote\"><blockquote><p>\"C'est une grosse affaire. \u00c9tant donn\u00e9 les intrusions que nous connaissons d\u00e9j\u00e0, je m'attends \u00e0 ce que la port\u00e9e des attaques s'\u00e9largisse \u00e0 mesure que nous examinerons les registres\".<\/p><cite>John Scott-Railton, chercheur au Citizen Lab<\/cite><\/blockquote><\/figure>","protected":false},"excerpt":{"rendered":"<p>Un groupe de piratage russe a infect\u00e9 des agences gouvernementales am\u00e9ricaines et des milliers d'entreprises dans le monde entier avec un malware via des serveurs en nuage.<\/p>","protected":false},"author":2,"featured_media":6461,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"_acf_changed":false,"_crdt_document":"","inline_featured_image":false,"footnotes":""},"categories":[685],"tags":[950,951],"class_list":["post-6458","post","type-post","status-publish","format-standard","has-post-thumbnail","hentry","category-allgemein","tag-fireeye","tag-hacker"],"acf":[],"_wp_attached_file":null,"_wp_attachment_metadata":null,"litespeed-optimize-size":null,"litespeed-optimize-set":null,"_elementor_source_image_hash":null,"_wp_attachment_image_alt":null,"stockpack_author_name":null,"stockpack_author_url":null,"stockpack_provider":null,"stockpack_image_url":null,"stockpack_license":null,"stockpack_license_url":null,"stockpack_modification":null,"color":null,"original_id":null,"original_url":null,"original_link":null,"unsplash_location":null,"unsplash_sponsor":null,"unsplash_exif":null,"unsplash_attachment_metadata":null,"_elementor_is_screenshot":null,"surfer_file_name":null,"surfer_file_original_url":null,"envato_tk_source_kit":null,"envato_tk_source_index":null,"envato_tk_manifest":null,"envato_tk_folder_name":null,"envato_tk_builder":null,"envato_elements_download_event":null,"_menu_item_type":null,"_menu_item_menu_item_parent":null,"_menu_item_object_id":null,"_menu_item_object":null,"_menu_item_target":null,"_menu_item_classes":null,"_menu_item_xfn":null,"_menu_item_url":null,"_trp_menu_languages":null,"rank_math_primary_category":"685","rank_math_title":null,"inline_featured_image":null,"_yoast_wpseo_primary_category":"692","rank_math_schema_blogposting":null,"rank_math_schema_videoobject":null,"_oembed_049c719bc4a9f89deaead66a7da9fddc":null,"_oembed_time_049c719bc4a9f89deaead66a7da9fddc":null,"_yoast_wpseo_focuskw":null,"_yoast_wpseo_linkdex":null,"_oembed_27e3473bf8bec795fbeb3a9d38489348":null,"_oembed_c3b0f6959478faf92a1f343d8f96b19e":null,"_trp_translated_slug_en_us":null,"_wp_desired_post_slug":null,"_yoast_wpseo_title":null,"tldname":null,"tldpreis":null,"tldrubrik":null,"tldpolicylink":null,"tldsize":null,"tldregistrierungsdauer":null,"tldtransfer":null,"tldwhoisprivacy":null,"tldregistrarchange":null,"tldregistrantchange":null,"tldwhoisupdate":null,"tldnameserverupdate":null,"tlddeletesofort":null,"tlddeleteexpire":null,"tldumlaute":null,"tldrestore":null,"tldsubcategory":null,"tldbildname":null,"tldbildurl":null,"tldclean":null,"tldcategory":null,"tldpolicy":null,"tldbesonderheiten":null,"tld_bedeutung":null,"_oembed_d167040d816d8f94c072940c8009f5f8":null,"_oembed_b0a0fa59ef14f8870da2c63f2027d064":null,"_oembed_4792fa4dfb2a8f09ab950a73b7f313ba":null,"_oembed_33ceb1fe54a8ab775d9410abf699878d":null,"_oembed_fd7014d14d919b45ec004937c0db9335":null,"_oembed_21a029d076783ec3e8042698c351bd7e":null,"_oembed_be5ea8a0c7b18e658f08cc571a909452":null,"_oembed_a9ca7a298b19f9b48ec5914e010294d2":null,"_oembed_f8db6b27d08a2bb1f920e7647808899a":null,"_oembed_168ebde5096e77d8a89326519af9e022":null,"_oembed_cdb76f1b345b42743edfe25481b6f98f":null,"_oembed_87b0613611ae54e86e8864265404b0a1":null,"_oembed_27aa0e5cf3f1bb4bc416a4641a5ac273":null,"_oembed_time_27aa0e5cf3f1bb4bc416a4641a5ac273":null,"_tldname":null,"_tldclean":null,"_tldpreis":null,"_tldcategory":null,"_tldsubcategory":null,"_tldpolicy":null,"_tldpolicylink":null,"_tldsize":null,"_tldregistrierungsdauer":null,"_tldtransfer":null,"_tldwhoisprivacy":null,"_tldregistrarchange":null,"_tldregistrantchange":null,"_tldwhoisupdate":null,"_tldnameserverupdate":null,"_tlddeletesofort":null,"_tlddeleteexpire":null,"_tldumlaute":null,"_tldrestore":null,"_tldbildname":null,"_tldbildurl":null,"_tld_bedeutung":null,"_tldbesonderheiten":null,"_oembed_ad96e4112edb9f8ffa35731d4098bc6b":null,"_oembed_8357e2b8a2575c74ed5978f262a10126":null,"_oembed_3d5fea5103dd0d22ec5d6a33eff7f863":null,"_eael_widget_elements":null,"_oembed_0d8a206f09633e3d62b95a15a4dd0487":null,"_oembed_time_0d8a206f09633e3d62b95a15a4dd0487":null,"_aioseo_description":null,"_eb_attr":null,"_eb_data_table":null,"_oembed_819a879e7da16dd629cfd15a97334c8a":null,"_oembed_time_819a879e7da16dd629cfd15a97334c8a":null,"_acf_changed":null,"_wpcode_auto_insert":null,"_edit_last":"1","_edit_lock":"1608152272:1","_oembed_e7b913c6c84084ed9702cb4feb012ddd":"{{unknown}}","_oembed_bfde9e10f59a17b85fc8917fa7edf782":null,"_oembed_time_bfde9e10f59a17b85fc8917fa7edf782":null,"_oembed_03514b67990db061d7c4672de26dc514":"<iframe title=\"Gaia X\" width=\"800\" height=\"450\" src=\"https:\/\/www.youtube.com\/embed\/NhqLt_NJ6FA?feature=oembed\" frameborder=\"0\" allow=\"accelerometer; autoplay; clipboard-write; encrypted-media; gyroscope; picture-in-picture\" allowfullscreen><\/iframe>","_oembed_time_03514b67990db061d7c4672de26dc514":"1608152274","rank_math_news_sitemap_robots":"index","rank_math_robots":["index"],"_eael_post_view_count":"4303","_trp_automatically_translated_slug_ru_ru":null,"_trp_automatically_translated_slug_et":"nasa-pentagoni-ja-ko-haekkerite-infiltreerimine-tundlikesse-sihtmaerkidesse","_trp_automatically_translated_slug_lv":"nasa-pentagon-and-co-hackers-infiltrate-sensitive-targets","_trp_automatically_translated_slug_fr_fr":null,"_trp_automatically_translated_slug_en_us":null,"_wp_old_slug":null,"_trp_automatically_translated_slug_da_dk":null,"_trp_automatically_translated_slug_pl_pl":null,"_trp_automatically_translated_slug_es_es":null,"_trp_automatically_translated_slug_hu_hu":null,"_trp_automatically_translated_slug_fi":"nasa-pentagon-and-co-hackers-infiltrate-sensitive-targets","_trp_automatically_translated_slug_ja":"nasa-pentagon-and-co-hackers-infiltrate-sensitive-targets","_trp_automatically_translated_slug_lt_lt":null,"_elementor_edit_mode":null,"_elementor_template_type":null,"_elementor_version":null,"_elementor_pro_version":null,"_wp_page_template":null,"_elementor_page_settings":null,"_elementor_data":null,"_elementor_css":null,"_elementor_conditions":null,"_happyaddons_elements_cache":null,"_oembed_75446120c39305f0da0ccd147f6de9cb":null,"_oembed_time_75446120c39305f0da0ccd147f6de9cb":null,"_oembed_3efb2c3e76a18143e7207993a2a6939a":null,"_oembed_time_3efb2c3e76a18143e7207993a2a6939a":null,"_oembed_59808117857ddf57e478a31d79f76e4d":null,"_oembed_time_59808117857ddf57e478a31d79f76e4d":null,"_oembed_965c5b49aa8d22ce37dfb3bde0268600":"<blockquote class=\"twitter-tweet\" data-width=\"550\" data-dnt=\"true\"><p lang=\"de\" dir=\"ltr\">Der <a href=\"https:\/\/twitter.com\/hashtag\/Finanzausschuss?src=hash&amp;ref_src=twsrc%5Etfw\">#Finanzausschuss<\/a> im <a href=\"https:\/\/twitter.com\/hashtag\/Bundestag?src=hash&amp;ref_src=twsrc%5Etfw\">#Bundestag<\/a> hat das <a href=\"https:\/\/twitter.com\/hashtag\/Jahressteuergesetz?src=hash&amp;ref_src=twsrc%5Etfw\">#Jahressteuergesetz<\/a> beschlossen. Damit wurde auch die <a href=\"https:\/\/twitter.com\/hashtag\/Gemeinn%C3%BCtzigkeit?src=hash&amp;ref_src=twsrc%5Etfw\">#Gemeinn\u00fctzigkeit<\/a> f\u00fcr <a href=\"https:\/\/twitter.com\/hashtag\/Freifunk?src=hash&amp;ref_src=twsrc%5Etfw\">#Freifunk<\/a> Initiativen beschlossen. Das ganze geht jetzt in der kommenden Woche ins Plenum zur Abstimmung und direkt in den <a href=\"https:\/\/twitter.com\/hashtag\/Bundesrat?src=hash&amp;ref_src=twsrc%5Etfw\">#Bundesrat<\/a><\/p>&mdash; Jens Zimmermann (@JensZSPD) <a href=\"https:\/\/twitter.com\/JensZSPD\/status\/1336581821706989568?ref_src=twsrc%5Etfw\">December 9, 2020<\/a><\/blockquote><script async src=\"https:\/\/platform.twitter.com\/widgets.js\" charset=\"utf-8\"><\/script>","_oembed_time_965c5b49aa8d22ce37dfb3bde0268600":"1608152273","_oembed_81002f7ee3604f645db4ebcfd1912acf":"<iframe title=\"Netzetag bei der Telekom: Antennen, Breitband, Glasfaser\" width=\"800\" height=\"450\" src=\"https:\/\/www.youtube.com\/embed\/6_NTa3VCRFo?feature=oembed\" frameborder=\"0\" allow=\"accelerometer; autoplay; clipboard-write; encrypted-media; gyroscope; picture-in-picture\" allowfullscreen><\/iframe>","_oembed_time_81002f7ee3604f645db4ebcfd1912acf":"1608152273","_elementor_screenshot":null,"_oembed_7ea3429961cf98fa85da9747683af827":null,"_oembed_time_7ea3429961cf98fa85da9747683af827":null,"_elementor_controls_usage":null,"_elementor_page_assets":[],"_elementor_screenshot_failed":null,"theplus_transient_widgets":["tp-video-player"],"_eael_custom_js":null,"_wp_old_date":"2020-12-14","_trp_automatically_translated_slug_it_it":null,"_trp_automatically_translated_slug_pt_pt":null,"_trp_automatically_translated_slug_zh_cn":null,"_trp_automatically_translated_slug_nl_nl":null,"_trp_automatically_translated_slug_pt_br":null,"_trp_automatically_translated_slug_sv_se":null,"rank_math_analytic_object_id":"499","rank_math_internal_links_processed":null,"_trp_automatically_translated_slug_ro_ro":null,"_trp_automatically_translated_slug_sk_sk":null,"_trp_automatically_translated_slug_bg_bg":null,"_trp_automatically_translated_slug_sl_si":null,"litespeed_vpi_list":["webhostinglogo.png"],"litespeed_vpi_list_mobile":["webhostinglogo.png"],"rank_math_seo_score":null,"rank_math_contentai_score":null,"ilj_limitincominglinks":null,"ilj_maxincominglinks":null,"ilj_limitoutgoinglinks":null,"ilj_maxoutgoinglinks":null,"ilj_limitlinksperparagraph":null,"ilj_linksperparagraph":null,"ilj_blacklistdefinition":null,"ilj_linkdefinition":[],"_eb_reusable_block_ids":[],"rank_math_focus_keyword":null,"rank_math_og_content_image":null,"_yoast_wpseo_metadesc":"Eine russische Hackergruppe hat \u00fcber Cloud-Server US-Beh\u00f6rden und tausende Unternehmen weltweit mit einer Malware infiziert.","_yoast_wpseo_content_score":"30","_yoast_wpseo_focuskeywords":"[]","_yoast_wpseo_keywordsynonyms":"[\"\"]","_yoast_wpseo_estimated-reading-time-minutes":null,"rank_math_description":"Eine russische Hackergruppe hat \u00fcber Cloud-Server US-Beh\u00f6rden und tausende Unternehmen weltweit mit einer Malware infiziert.","surfer_last_post_update":null,"surfer_last_post_update_direction":null,"surfer_keywords":null,"surfer_location":null,"surfer_draft_id":null,"surfer_permalink_hash":null,"surfer_scrape_ready":null,"_thumbnail_id":"6461","footnotes":null,"_links":{"self":[{"href":"https:\/\/webhosting.de\/fr\/wp-json\/wp\/v2\/posts\/6458","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/webhosting.de\/fr\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/webhosting.de\/fr\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/webhosting.de\/fr\/wp-json\/wp\/v2\/users\/2"}],"replies":[{"embeddable":true,"href":"https:\/\/webhosting.de\/fr\/wp-json\/wp\/v2\/comments?post=6458"}],"version-history":[{"count":1,"href":"https:\/\/webhosting.de\/fr\/wp-json\/wp\/v2\/posts\/6458\/revisions"}],"predecessor-version":[{"id":8444,"href":"https:\/\/webhosting.de\/fr\/wp-json\/wp\/v2\/posts\/6458\/revisions\/8444"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/webhosting.de\/fr\/wp-json\/wp\/v2\/media\/6461"}],"wp:attachment":[{"href":"https:\/\/webhosting.de\/fr\/wp-json\/wp\/v2\/media?parent=6458"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/webhosting.de\/fr\/wp-json\/wp\/v2\/categories?post=6458"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/webhosting.de\/fr\/wp-json\/wp\/v2\/tags?post=6458"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}